salmanishere / pagure

Forked from pagure 5 years ago
Clone

5d21375 Couple of fixes for private repos

Authored and Committed by pingou 5 years ago
    Couple of fixes for private repos
    
    - Ensure we do not expose private git repo via https. (CVE-2018-1002153)
    - Ensure we do not log activity on private projects.
    
    Fixes https://pagure.io/pagure/issue/3302
    
    Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
    
        
file modified
+4 -0
file modified
+6 -5